GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,174

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,265 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization vulnerability in bPlugins Tiktok Feed allows Accessing Functionality Not... High Unreviewed

CVE-2025-54710 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in PluginsPoint Kento Splash Screen allows Stored... High Unreviewed

CVE-2025-48351 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53224 was published Aug 28, 2025

Deserialization of Untrusted Data vulnerability in emarket-design Employee Directory – Staff... High Unreviewed

CVE-2025-53243 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in thaihavnn07 ATT YouTube Widget allows Stored... High Unreviewed

CVE-2025-48359 was published Aug 28, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-49404 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49405 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-53216 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dactum Clickbank WordPress Plugin (Niche... High Unreviewed

CVE-2025-48353 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-49407 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-53248 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53223 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53225 was published Aug 28, 2025

Missing Authorization vulnerability in honzat Page Manager for Elementor allows Exploiting... High Unreviewed

CVE-2025-53230 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49383 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53215 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-53227 was published Aug 28, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53220 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-53244 was published Aug 28, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-53247 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Gary Illyes Google XML News Sitemap plugin... High Unreviewed

CVE-2025-48304 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in developers savyour Savyour Affiliate Partner... High Unreviewed

CVE-2025-48306 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in shmish111 WP Admin Theme allows Stored XSS.... High Unreviewed

CVE-2025-48325 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in cuckoohello 百度分享按钮 allows Stored XSS. This... High Unreviewed

CVE-2025-48320 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dyiosah Ultimate twitter profile widget allows... High Unreviewed

CVE-2025-48321 was published Aug 28, 2025

Previous 1…21…400 Next

Previous 1 2 … 19 20 21 22 23 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

103,265 advisories